Adaptive data loss prevention

Abstract

Described embodiments provide systems and methods for adaptive data loss prevention. A first computing device may generate, according to a first response from a server and an output from a second computing device identifying sensitive data in the first response, at least one rule regarding the sensitive data, and at least one template for data loss prevention (DLP) responses. The first computing device may determine, according to the at least one rule, a match to a second response from the server, that includes the sensitive data. The first computing device may provide, according to the match and the at least one template, a DLP response to redact the sensitive data of the second response, in place of a DLP output from the second computing device identifying the sensitive data in the second response.

Description

FIELD OF THE DISCLOSURE[0001]The present application generally relates to computing systems and environments. In particular, the present application relates to systems and methods for adaptive data loss prevention.BACKGROUND[0002]Data may be stored and maintained in a computing environment. A data loss prevention (DLP) application may detect potential or actual exfiltration of data from the computing environment.BRIEF SUMMARY[0003]A computing environment (e.g., an enterprise) may store and maintain various data (e.g., in the form of one or more files). A data loss prevention (DLP) service may be used to assess a level of risk in an attempt to access the data. When a query to access the data (e.g., read or write), a computing device of the environment may send a request to determine the level of risk to the DLP service. The DLP service may calculate the level of risk based on various factors. In accordance with the level of risk and security policies, the DLP service may permit or re...

AI Technical Summary

Benefits of technology

The patent text describes a solution for protecting sensitive data during a data loss prevention (DLP) outage. The solution involves a gateway that creates rules and templates in a structured document form to replicate DLP decisions. The gateway can mask multiple web responses with similar structures and reduce the amount of exposed sensitive data. This improves data security and reduces resource consumption. The technical effect of the solution is improved data security and reduced resource consumption.

Problems solved by technology

While such a platform may be used to evaluate the risk and control access to various data in the computing environment, there may be several technical challenges in fully utilizing the capabilities of the DLP service.

For one, when the DLP service (e.g., residing on the cloud) is down or otherwise inaccessible, the transactions to access the data may be entirely blocked (e.g., fail closed) harming operations of environment or wholly allowed (e.g., fail open) risking disclosure of sensitive data that would have been otherwise blocked.

Since the environment may have been configured to restrict any access to data without permission by the DLP service, the unavailability of the DLP service may also result in the complete stoppage of operations of environment.

For another, even when the DLP service is available, each request may consume a large amount of computing and networking resources, and the costs of processing may become significant over time.

For an enterprise with over several thousand users and each user accessing the information page once a month, the number of DLP calls may also be in the several of thousands which can consume vast resources and significantly increase operating costs.

Not to mention, the processing of the requests at the DLP service may lead to a reduction in performance due to overhead for each request.

Images